{"id":942,"date":"2009-06-24T11:35:09","date_gmt":"2009-06-24T10:35:09","guid":{"rendered":"http:\/\/blog.intego.com\/?p=942"},"modified":"2009-06-24T11:35:09","modified_gmt":"2009-06-24T10:35:09","slug":"hacking-twitter-to-spread-mac-malware","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/hacking-twitter-to-spread-mac-malware\/","title":{"rendered":"Hacking Twitter to Spread Mac Malware"},"content":{"rendered":"

Yesterday, the Twitter feed of Guy Kawasaki<\/a>, well-known tech entrepreneur, was hacked<\/s> using a feed which he thought was moderated but was not, which sent a tweet saying the following: <\/p>\n

<\/p>\n

For those who don’t follow celebrity news, Leighton Meester is an actress in the TV series Gossip Girl, and there are suggestions that she may have made a porn film when she was 18. Apparently, someone is trying to sell this tape, and one assumes that a number of Internet users would like to see it. (Note that more than 130,000 people follow Guy Kawasaki’s Twitter feed.)<\/p>\n

So this hacked tweet directs people to a web site that features a number of pornographic images, including an “embedded video” of the sex tape. Users click an arrow on the video’s frame to view it, but, Oh! Surprise! This merely downloads a disk image called ActiveXsetup.dmg. If the user opens this disk image and runs the installer package, they see this screen:<\/p>\n

<\/p>\n

This is the now-common installer screen for the RSPlug Trojan horse (first discovered by Intego in October 2007<\/a>), which, if installed, does many bad things to your Mac.<\/p>\n

This is yet another attempt to get this Trojan horse into circulation, following close on last week’s discovery of game sites<\/a> spreading the Trojan.<\/p>\n

The groups behind this Trojan seem heavily motivated to keep this Trojan in circulation, and new vectors will certainly be found. Just remember, don’t install anything you download from un-trustworthy sources, and use Intego VirusBarrier X5<\/a> to ensure that you don’t get infected from this and other types of Mac malware. <\/p>\n","protected":false},"excerpt":{"rendered":"

Yesterday, the Twitter feed of Guy Kawasaki, well-known tech entrepreneur, was hacked using a feed which he thought was moderated but was not, which sent a tweet saying the following: For those who don’t follow celebrity news, Leighton Meester is an actress in the TV series Gossip Girl, and there are suggestions that she may […]<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[13],"tags":[],"yoast_head":"\n\n\n\n\n\n\n\n\n\n\n\n\n\n\t\n\t\n\t\n